   - abrt
   - accountsd
   - acct
   - ada
   - afs
   - aiccu
   - aide
   - aisexec
   - ajaxterm
   - alsa
   - amanda
   - amavis
   - amtu
   - anaconda
   - antivirus
   - apache
   - apcupsd
   - apm
   - apt
   - arpwatch
   - asterisk
   - authbind
   - authconfig
   - automount
   - avahi
   - awstats
   - backup
   - bacula
   - bcfg2
   - bind
   - bird
   - bitlbee
   - blkmapd
   - blueman
   - bluetooth
   - boinc
   - brctl
   - brltty
   - bugzilla
   - bumblebee
   - cachefilesd
   - calamaris
   - callweaver
   - canna
   - ccs
   - cdrecord
   - certmaster
   - certmonger
   - certwatch
   - cfengine
   - cgdcbxd
   - cgroup
   - chrome
   - chronyd
   - cinder
   - cipe
   - clamav
   - clockspeed
   - clogd
   - cloudform
   - cmirrord
   - cobbler
   - cockpit
   - collectd
   - colord
   - comsat
   - condor
   - conman
   - consolekit
   - container
   - corosync
   - couchdb
   - courier
   - cpucontrol
   - cpufreqselector
   - cpuplug
   - cron
   - ctdb
   - cups
   - cvs
   - cyphesis
   - cyrus
   - daemontools
   - dante
   - dbadm
   - dbskk
   - dbus
   - dcc
   - ddclient
   - ddcprobe
   - denyhosts
   - devicekit
   - dhcp
   - dictd
   - dirmngr
   - dirsrv
   - dirsrv-admin
   - distcc
   - djbdns
   - dkim
   - dmidecode
   - dnsmasq
   - dnssec
   - dnssectrigger
   - dovecot
   - dpkg
   - drbd
   - dspam
   - entropyd
   - etcd
   - evolution
   - exim
   - fail2ban
   - fcoe
   - fetchmail
   - finger
   - firewalld
   - firewallgui
   - firstboot
   - fprintd
   - freeipmi
   - freqset
   - ftp
   - fwupd
   - games
   - gatekeeper
   - gdomap
   - gear
   - geoclue
   - gift
   - git
   - gitosis
   - glance
   - glusterd
   - gnome
   - gnomeclock
   - gpg
   - gpm
   - gpsd
   - gssproxy
   - guest
   - hadoop
   - hal
   - hddtemp
   - hostapd
   - howl
   - hsqldb
   - hwloc
   - hypervkvp
   - i18n_input
   - icecast
   - ifplugd
   - imaze
   - inetd
   - inn
   - iodine
   - iotop
   - ipa
   - ipmievd
   - irc
   - ircd
   - irqbalance
   - iscsi
   - isns
   - jabber
   - java
   - jetty
   - jockey
   - journalctl
   - kde
   - kdump
   - kdumpgui
   - keepalived
   - kerberos
   - kerneloops
   - keyboardd
   - keystone
   - kismet
   - kmscon
   - ksmtuned
   - ktalk
   - kubernetes
   - kudzu
   - l2tp
   - ldap
   - lightsquid
   - likewise
   - linuxptp
   - lircd
   - livecd
   - lldpad
   - loadkeys
   - lockdev
   - logrotate
   - logwatch
   - lpd
   - lsm
   - lttng-tools
   - mailman
   - mailscanner
   - man2html
   - mandb
   - mcelog
   - mcollective
   - mediawiki
   - memcached
   - milter
   - minidlna
   - minissdpd
   - mip6d
   - mirrormanager
   - mock
   - modemmanager
   - mojomojo
   - mon_statd
   - mongodb
   - mono
   - monop
   - motion
   - mozilla
   - mpd
   - mplayer
   - mrtg
   - mta
   - munin
   - mysql
   - mythtv
   - naemon
   - nagios
   - namespace
   - ncftool
   - nessus
   - networkmanager
   - ninfod
   - nis
   - nova
   - nscd
   - nsd
   - nslcd
   - nsplugin
   - ntop
   - ntp
   - numad
   - nut
   - nx
   - oav
   - obex
   - oddjob
   - oident
   - openca
   - openct
   - opendnssec
   - openfortivpn
   - openhpi
   - openhpid
   - openshift
   - openshift-origin
   - opensm
   - openvpn
   - openvswitch
   - openwsman
   - oracleasm
   - osad
   - pacemaker
   - pads
   - passenger
   - pcmcia
   - pcp
   - pcscd
   - pdns
   - pegasus
   - perdition
   - pesign
   - pingd
   - piranha
   - pkcs
   - pkcs11proxyd
   - pki
   - plymouthd
   - podsleuth
   - policykit
   - polipo
   - portage
   - portmap
   - portreserve
   - portslave
   - postfix
   - postfixpolicyd
   - postgrey
   - ppp
   - prelink
   - prelude
   - privoxy
   - procmail
   - prosody
   - psad
   - ptchown
   - publicfile
   - pulseaudio
   - puppet
   - pwauth
   - pxe
   - pyzor
   - qemu
   - qmail
   - qpid
   - quantum
   - quota
   - rabbitmq
   - radius
   - radvd
   - raid
   - rasdaemon
   - razor
   - rdisc
   - readahead
   - realmd
   - redis
   - remotelogin
   - resmgr
   - rgmanager
   - rhcs
   - rhev
   - rhgb
   - rhnsd
   - rhsmcertd
   - ricci
   - rkhunter
   - rkt
   - rlogin
   - rngd
   - rolekit
   - roundup
   - rpc
   - rpcbind
   - rpm
   - rshd
   - rssh
   - rsync
   - rtas
   - rtkit
   - rwho
   - samba
   - sambagui
   - samhain
   - sandbox
   - sandboxX
   - sanlock
   - sasl
   - sbd
   - sblim
   - screen
   - sectoolm
   - sendmail
   - sensord
   - setroubleshoot
   - sge
   - shorewall
   - shutdown
   - slocate
   - slpd
   - slrnpull
   - smartmon
   - smokeping
   - smoltclient
   - smsd
   - smstools
   - snapper
   - snmp
   - snort
   - sosreport
   - soundserver
   - spamassassin
   - speech-dispatcher
   - speedtouch
   - squid
   - sslh
   - sssd
   - stapserver
   - stunnel
   - svnserve
   - swift
   - swift_alias
   - sxid
   - sysstat
   - targetd
   - tcpd
   - tcsd
   - telepathy
   - telnet
   - tftp
   - tgtd
   - thin
   - thumb
   - thunderbird
   - timidity
   - tmpreaper
   - tomcat
   - tor
   - transproxy
   - tripwire
   - tuned
   - tvtime
   - tzdata
   - ucspitcp
   - udisks2
   - ulogd
   - uml
   - updfstab
   - uptime
   - usbmodules
   - usbmuxd
   - userhelper
   - usernetctl
   - uucp
   - uuidd
   - uwimap
   - varnishd
   - vbetool
   - vdagent
   - vhostmd
   - virt
   - vlock
   - vmtools
   - vmware
   - vnstatd
   - vpn
   - w3c
   - watchdog
   - wdmd
   - webadm
   - webalizer
   - wine
   - wireshark
   - wm
   - xen
   - xfs
   - xguest
   - xprint
   - xscreensaver
   - yam
   - zabbix
   - zarafa
   - zebra
   - zoneminder
   - zosremote

* Global Booleans

* Global Tunables

* Boolean Index

* Tunable Index

* Interface Index

* Template Index

Layer: contrib

Module: ipa

Description:

Policy for IPA services.

Interfaces:

ipa_delete_tmp(
	
		domain
		
	)

Summary

Allow domain to manage ipa tmp files

Parameters

Parameter:	Description:
domain	Domain allowed access.

ipa_domtrans_helper(
	
		domain
		
	)

Summary

Execute ipa-helper in the ipa_helper domain.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.

ipa_domtrans_otpd(
	
		domain
		
	)

Summary

Execute rtas_errd in the rtas_errd domin.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.

ipa_filetrans_pid(
	
		domain
		
			,
		
		name
		
	)

Summary

Create specified objects in generic pid directories with the ipa pid file type.

Parameters

Parameter:	Description:
domain	Domain allowed access.
name	The name of the object being created.

ipa_manage_lib(
	
		domain
		
	)

Summary

Allow domain to manage ipa lib files/dirs.

Parameters

Parameter:	Description:
domain	Domain allowed access.

ipa_manage_log(
	
		domain
		
	)

Summary

Allow domain to manage ipa log files/dirs.

Parameters

Parameter:	Description:
domain	Domain allowed access.

ipa_manage_pid_files(
	
		domain
		
	)

Summary

Allow domain to manage ipa run files/dirs.

Parameters

Parameter:	Description:
domain	Domain allowed access.

ipa_named_filetrans_log_dir(
	
		domain
		
	)

Summary

Create log files with a named file type transition.

Parameters

Parameter:	Description:
domain	Domain allowed access.

ipa_read_lib(
	
		domain
		
	)

Summary

Allow domain to manage ipa lib files/dirs.

Parameters

Parameter:	Description:
domain	Domain allowed access.

ipa_run_helper(
	
		domain
		
			,
		
		role
		
	)

Summary

Execute ipa-helper in the ipa_helper domain.

Parameters

Parameter:	Description:
domain	Domain allowed to transition.
role	Role allowed access.

ipa_search_lib(
	
		domain
		
	)

Summary

Allow domain to manage ipa lib files/dirs.

Parameters

Parameter:	Description:
domain	Domain allowed access.

ipa_stream_connect_otpd(
	
		domain
		
	)

Summary

Connect to ipa-otpd over a unix stream socket.

Parameters

Parameter:	Description:
domain	Domain allowed access.

Return